Subscription to the full report on a daily basis can be obtained:
Send an eMail to dhsdailyadmin@mail.dhs.osis.gov with the subject "DHS Daily Open Source Infrastructure Report" and the following line in the body...subscribe.
To obtain a complete copy of the current report proceed to the DHS link below.
To obtain reports more than 10 business days old, send an eMail to DHS_Reports@e-computer-security.com. Be specific as to the reports you wish to receive.

· Arkansas State Troopers arrested a suspect known as the “Loan Ranger Bandit” July 1and charged him with 11 counts of robbery in connection with the robbery of banks in Texas, Arkansas, and Mississippi. – KETK 56 Jacksonville See item 8 below in the Financial Services Sector

· Crews expected to clear the scene of a trail derailment by July 3 after a Norfolk Southern train allegedly crashed into the back of another July 2 in Sewickley, Pennsylvania, causing three trains to derail and two individuals to be injured. – KDKA 2 Pittsburgh

15. July 2, KDKA 2 Pittsburgh – (Pennsylvania) Emergency crews called to Sewickley train derailment & fire. Crews expected to clear the scene of a trail derailment by July 3 after a Norfolk Southern train allegedly crashed into the back of another July 2 in Sewickley, causing three trains to derail and two individuals to be transported to an area hospital with injuries. Train service was halted while authorities investigated the incident. Source: http://pittsburgh.cbslocal.com/2014/07/02/emergency-crews-called-to-sewickley-train-fire/

· Two juveniles were arrested and charged June 25 for their alleged involvement in a shooting spree that damaged over 40 businesses, vehicles, and residences throughout Neshoba County, Mississippi, between June 19 and 20. – Neshoba Democrat

37. July 2, Neshoba Democrat – (Mississippi) Two charged in shooting spree. Two juveniles were arrested and charged June 25 for their alleged involvement in a shooting spree that damaged over 40 businesses, vehicles, and residences throughout Neshoba County between June 19 and 20. No injuries were reported in connection with the shootings. Source: http://neshobademocrat.com/main.asp?SectionID=2&SubSectionID=297&ArticleID=32974

· Residents in low-lying areas along the Iowa River in Johnson County, Iowa, received mandatory evacuation notices July 2 due to rising water from the Coralville Lake Reservoir threatening to crest over the dam’s spillway and flood the area. – Iowa City Press-Citizen; Associated Press

41. July 3, Iowa City Press-Citizen; Associated Press – (Iowa) Iowa City braces for flooding as reservoir water rises. Residents in low-lying areas along the Iowa River in Johnson County received mandatory evacuation notices July 2 due to rising water from the Coralville Lake Reservoir threatening to crest over the dam’s spillway and flood the area. Natural gas and electricity will be shut off to several areas in the county and all beaches, campgrounds, and waterways were closed or placed under a ban. Source: http://www.desmoinesregister.com/story/news/2014/07/02/iowa-city-braces-flooding/12120539/

Financial Services Sector

8. July 2, KETK 56 Jacksonville – (Arkansas; Texas; Mississippi) Loan Ranger Bandit arrested during traffic stop. Arkansas State Troopers arrested a suspect known as the “Loan Ranger Bandit” during a traffic stop July 1. The man was charged with 11 counts of robbery and other charges for his alleged robbery of banks in Texas, Arkansas, and Mississippi between 2009 and 2014. Source: http://www.ketknbc.com/news/crimewatch/loan-ranger-bandit-arrested

10. July 2, Associated Press – (New York; California) Ex-NY policeman pleads guilty to company theft. A former New York police officer who was also the former vice president of Fidelity National Title Group pleaded guilty July 2 to stealing roughly $469,000 from the company and spending it on gambling. In 2009 the suspect arranged for a vendor to send the money to a bank account he controlled and used the funds for personal use. Source: http://www.utsandiego.com/news/2014/Jul/02/ex-ny-policeman-pleads-guilty-to-company-theft/

11. July 2, Securityweek – (International) New Android malware targets banking apps, phone information: FireEye. FireEye researchers identified a piece of Android malware known as HijackRAT that disguises itself as a ‘Google Service Framework’ and is capable of disabling antivirus applications, stealing banking credentials and personal information, and remotely accessing infected devices. The malware is currently targeting banks in Korea but can be easily modified to target others. Source: http://www.securityweek.com/new-android-malware-targets-banking-apps-phone-information-fireeye

12. July 2, U.S. Securities and Exchange Commission – (Minnesota) Court imposes officer and director bar, injunction and monetary sanctions against Minneapolis attorney based on fraud verdict. The U.S. Securities and Exchange Commission announced July 2 that a judge imposed sanctions against a Minneapolis attorney, Capital Solutions Monthly Income Fund, and Transactional Finance Fund Management (TFFM) for allegedly engaging in securities fraud by issuing false and misleading statements to investors and fraudulently issuing a series of unregistered offerings of interest. The attorney was barred from serving as an officer or director of a publicly traded company for 10 years, and sanctions totaling $19.7 million were levied against the attorney, the fund, and TFFM. Source: http://www.sec.gov/litigation/litreleases/2014/lr23036.htm

13. June 30, Southern California City News Service – (California) San Diego CPA convicted in elaborate tax evasion scheme. A San Diego certified public accountant was convicted June 30 for running an identity theft and tax evasion scheme where he used the identities of deceased individuals to open bank accounts and then transferred funds to those accounts in order to hide his income from the Internal Revenue Service. The man failed to report $5 million in income and owed the IRS $1.6 million. Source: http://www.cbs8.com/story/25910774/san-diego-cpa-convicted-in-elaborate-tax-evasion-scheme

Information Technology Sector

30. July 3, Securityweek – (International) Enhanced KIVARS malware now attacks 64-bit systems. Researchers with Trend Micro analyzed a new version of the KIVARS malware that is capable of targeting systems running 64-bit operating systems. The malware is distributed using the TROJ_FAKEWORD.A dropper and is capable of several data-stealing and remote actions. Source: http://www.securityweek.com/enhanced-kivars-malware-now-attacks-64-bit-systems

31. July 3, The Register – (International) Oh SNAP! Old-school ’80s Unix hack to smack OSX, iOS, Red Hat? Researchers with DefenseCode released a white paper outlining how Unix-based systems could be vulnerable to hijacking via a class of vulnerabilities involving ‘wildcard’ characters in filenames. The vulnerability could allow attackers to inject arbitrary arguments to shell commands run by other users. Source: http://www.theregister.co.uk/2014/07/03/unix_wildcard_vuln_lets_hackers_modify_shell_scripts/

33. July 2, The Register – (International) Running Cisco’s VoIP manager? Four words you don’t want to hear: ‘Backdoor SSH root key’. Cisco warned users of its Unified Communications installations that a vulnerability exists in its Unified Communications Domain Manager (Unified CDM) software that can allow an unauthenticated attacker to gain root access by exploiting a default SSH key designed for use by Cisco support representatives. The vulnerability is present in all versions of Cisco Unified CDM prior to version 4.4.2 and users were advised to update the software, or to filter SSH access as a stopgap measure. Source: http://www.theregister.co.uk/2014/07/02/cisco_you_cant_just_leave_your_ssh_keys_lying_around/

Links

About Me

U.S. Army Retired Chief Warrant Officer with more than 40 years in information technology and 35 years in information security. Became a Certified Information Systems Security Professional in 1995 and have taught computer security in Asia, Canada and the United States. Wrote a computer security column for 5 years in the 1980s titled "for the Sake Of Security", penname R. E. (Bob) Johnston, which was published in Computer Decisions.
Motto: "When entrusted to process, you are obligated to safeguard"